Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.mypipjournal.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 20, 2025
Valid Until
January 18, 2026
49 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
18:AA:C2:CD:17:5C:BD:2E:3E:F0:7B:E1:39:9A:C2:A6:36:3B:99:91:46:E4:5B:AF:8B:07:58:07:AC:B7:3F:08
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.dzienniczek-wyproznien.info
adrianbadilla.com
www.albertodenatale.com
alconasoftware.com
www.alexmitchelltech.com
anderick.com.br
brickbreak.antoniogalan.es
appkultur.com
www.athidivindhu.in
axio.co
banklogs.shop
www.bash.social
belsnabstroi.by
bgaworks.com
bipod.fit
www.bitsbee.io
bootspruefung.de
i.campaignus.do
carlosmachado.me
cfd-parapente.com
mykanban.chaurasiaaditya.in
cheapershopping.eu
coffeestudio.clau.io
claywelldigital.com
erm2.cmatik.app
tigersautomation.co.il
www.codra.se
collaborativespirits.com
collectivo.online
eeo.com.tr
crazybonkle3d.com
www.cvmetalproducts.ca
da-gen.com
deathpitch.com
app.decisionhub.org
www.designesy.com
application.egp.vn
endoassist.com.br
okle-herbstmesse.enra.app
www.eschrich.us
esense.xyz
www.europakommunal.de
www.fortunati.com
gemahernan.com
getanamazingfuture.com
smart.drohobych-rada.gov.ua
graciebiswell.com
hexcode.co
www.homoblood.online
console.hukum.store
thangnd202416608.id.vn
www.improvequality.it
m.istoria.app
iyom.app
www.jandrmarket.com
www.lehighsportscamps.com
www.mariaflo.app
max4you.maxsource.pt
www.mb-rekonstrukce.cz
www.mellonsocial.app
attach-alpha.mikmak.tv
harvardclassics.moransoftware.ca
www.mypipjournal.com
www.myxgri.com
qr.myzeal.app
nagyito.hu
ndibekelia.org
link-mcd.nibo.com.br
contandoosdias.odd.studio
mainnet.odinprotocol.io
www.onuralpavci.dev
oshibana.fun
photos.paradisekivu.com
www.parkd.app
app.piscinapp.com.br
diaani.productgenius.io
survey.prof.ninja
robomaze.org
www.rorepaircare.in
satyanandan.co
savekr.store
schoolyear.us
admin.smylee.com.au
studever.org
www.tetonick.com
polygon.toobzgaming.com
toren.uk
crm.tracknerd.io
www.trus.cl
www.unicupos.com
admin.unitranssusu.com
vardion.eu
staging.vestidasdebranco.com.br
vicohsoftware.com
cdn.voxelmax.com
emiconnect.web.id
page-builder.winnonapartners.com
webhook.ws-svc.de
www.xuan-phong.com
paris.zik.ooo
Other domains in certificate